diff --git a/cmd/entire/cli/checkpoint/temporary.go b/cmd/entire/cli/checkpoint/temporary.go
index 1fc1b64c0..e1fdb1964 100644
--- a/cmd/entire/cli/checkpoint/temporary.go
+++ b/cmd/entire/cli/checkpoint/temporary.go
@@ -922,6 +922,8 @@ func addDirectoryToEntriesWithAbsPath(repo *git.Repository, dirPathAbs, dirPathR
 
 		treePath := filepath.ToSlash(filepath.Join(dirPathRel, relWithinDir))
 
+		// Use redacted blob creation for metadata files (transcripts, prompts, etc.)
+		// to ensure PII and secrets are redacted before writing to git.
 		blobHash, mode, err := createRedactedBlobFromFile(repo, path, treePath)
 		if err != nil {
 			return fmt.Errorf("failed to create blob for %s: %w", path, err)
diff --git a/cmd/entire/cli/doctor.go b/cmd/entire/cli/doctor.go
index 1b5a0a940..a19b06155 100644
--- a/cmd/entire/cli/doctor.go
+++ b/cmd/entire/cli/doctor.go
@@ -38,6 +38,9 @@ For each stuck session, you can choose to:
 
 Use --force to condense all fixable sessions without prompting.  Sessions that can't
 be condensed will be discarded.`,
+		PreRun: func(_ *cobra.Command, _ []string) {
+			strategy.EnsureRedactionConfigured()
+		},
 		RunE: func(cmd *cobra.Command, _ []string) error {
 			return runSessionsFix(cmd, forceFlag)
 		},
diff --git a/cmd/entire/cli/hooks_git_cmd.go b/cmd/entire/cli/hooks_git_cmd.go
index 2655478cd..b3e7bd15a 100644
--- a/cmd/entire/cli/hooks_git_cmd.go
+++ b/cmd/entire/cli/hooks_git_cmd.go
@@ -81,6 +81,10 @@ func initHookLogging() func() {
 		// Init failed - logging will use stderr fallback
 		return func() {}
 	}
+
+	// Configure PII redaction once at startup (reads settings, no-op if disabled).
+	strategy.EnsureRedactionConfigured()
+
 	return logging.Close
 }
 
diff --git a/cmd/entire/cli/settings/settings.go b/cmd/entire/cli/settings/settings.go
index 1249eb01c..62b728f22 100644
--- a/cmd/entire/cli/settings/settings.go
+++ b/cmd/entire/cli/settings/settings.go
@@ -49,6 +49,24 @@ type EntireSettings struct {
 	// Telemetry controls anonymous usage analytics.
 	// nil = not asked yet (show prompt), true = opted in, false = opted out
 	Telemetry *bool `json:"telemetry,omitempty"`
+
+	// Redaction configures PII redaction behavior for transcripts and metadata.
+	Redaction *RedactionSettings `json:"redaction,omitempty"`
+}
+
+// RedactionSettings configures redaction behavior beyond the default secret detection.
+type RedactionSettings struct {
+	PII *PIISettings `json:"pii,omitempty"`
+}
+
+// PIISettings configures PII detection categories.
+// When Enabled is true, email and phone default to true; address defaults to false.
+type PIISettings struct {
+	Enabled        bool              `json:"enabled"`
+	Email          *bool             `json:"email,omitempty"`
+	Phone          *bool             `json:"phone,omitempty"`
+	Address        *bool             `json:"address,omitempty"`
+	CustomPatterns map[string]string `json:"custom_patterns,omitempty"`
 }
 
 // Load loads the Entire settings from .entire/settings.json,
@@ -204,6 +222,84 @@ func mergeJSON(settings *EntireSettings, data []byte) error {
 		settings.Telemetry = &t
 	}
 
+	// Merge redaction sub-fields if present (field-level, not wholesale replace).
+	if redactionRaw, ok := raw["redaction"]; ok {
+		if settings.Redaction == nil {
+			settings.Redaction = &RedactionSettings{}
+		}
+		if err := mergeRedaction(settings.Redaction, redactionRaw); err != nil {
+			return fmt.Errorf("parsing redaction field: %w", err)
+		}
+	}
+
+	return nil
+}
+
+// mergeRedaction merges redaction overrides into existing RedactionSettings.
+// Only fields present in the override JSON are applied.
+func mergeRedaction(dst *RedactionSettings, data json.RawMessage) error {
+	var raw map[string]json.RawMessage
+	if err := json.Unmarshal(data, &raw); err != nil {
+		return fmt.Errorf("parsing redaction: %w", err)
+	}
+	if piiRaw, ok := raw["pii"]; ok {
+		if dst.PII == nil {
+			dst.PII = &PIISettings{}
+		}
+		if err := mergePIISettings(dst.PII, piiRaw); err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+// mergePIISettings merges PII overrides into existing PIISettings.
+// Only fields present in the override JSON are applied; missing fields
+// are preserved from the base settings.
+func mergePIISettings(dst *PIISettings, data json.RawMessage) error {
+	var raw map[string]json.RawMessage
+	if err := json.Unmarshal(data, &raw); err != nil {
+		return fmt.Errorf("parsing pii: %w", err)
+	}
+	if v, ok := raw["enabled"]; ok {
+		if err := json.Unmarshal(v, &dst.Enabled); err != nil {
+			return fmt.Errorf("parsing pii.enabled: %w", err)
+		}
+	}
+	if v, ok := raw["email"]; ok {
+		var b bool
+		if err := json.Unmarshal(v, &b); err != nil {
+			return fmt.Errorf("parsing pii.email: %w", err)
+		}
+		dst.Email = &b
+	}
+	if v, ok := raw["phone"]; ok {
+		var b bool
+		if err := json.Unmarshal(v, &b); err != nil {
+			return fmt.Errorf("parsing pii.phone: %w", err)
+		}
+		dst.Phone = &b
+	}
+	if v, ok := raw["address"]; ok {
+		var b bool
+		if err := json.Unmarshal(v, &b); err != nil {
+			return fmt.Errorf("parsing pii.address: %w", err)
+		}
+		dst.Address = &b
+	}
+	if v, ok := raw["custom_patterns"]; ok {
+		var cp map[string]string
+		if err := json.Unmarshal(v, &cp); err != nil {
+			return fmt.Errorf("parsing pii.custom_patterns: %w", err)
+		}
+		if dst.CustomPatterns == nil {
+			dst.CustomPatterns = cp
+		} else {
+			for k, val := range cp {
+				dst.CustomPatterns[k] = val
+			}
+		}
+	}
 	return nil
 }
 
diff --git a/cmd/entire/cli/settings/settings_test.go b/cmd/entire/cli/settings/settings_test.go
index ad09bc57a..6b5f2eb7f 100644
--- a/cmd/entire/cli/settings/settings_test.go
+++ b/cmd/entire/cli/settings/settings_test.go
@@ -59,7 +59,8 @@ func TestLoad_AcceptsValidKeys(t *testing.T) {
 		"local_dev": false,
 		"log_level": "debug",
 		"strategy_options": {"key": "value"},
-		"telemetry": true
+		"telemetry": true,
+		"redaction": {"pii": {"enabled": true, "email": true, "phone": false}}
 	}`
 	if err := os.WriteFile(settingsFile, []byte(settingsContent), 0644); err != nil {
 		t.Fatalf("failed to write settings file: %v", err)
@@ -92,6 +93,21 @@ func TestLoad_AcceptsValidKeys(t *testing.T) {
 	if settings.Telemetry == nil || !*settings.Telemetry {
 		t.Error("expected telemetry to be true")
 	}
+	if settings.Redaction == nil {
+		t.Fatal("expected redaction to be non-nil")
+	}
+	if settings.Redaction.PII == nil {
+		t.Fatal("expected redaction.pii to be non-nil")
+	}
+	if !settings.Redaction.PII.Enabled {
+		t.Error("expected redaction.pii.enabled to be true")
+	}
+	if settings.Redaction.PII.Email == nil || !*settings.Redaction.PII.Email {
+		t.Error("expected redaction.pii.email to be true")
+	}
+	if settings.Redaction.PII.Phone == nil || *settings.Redaction.PII.Phone {
+		t.Error("expected redaction.pii.phone to be false")
+	}
 }
 
 func TestLoad_LocalSettingsRejectsUnknownKeys(t *testing.T) {
@@ -135,6 +151,121 @@ func TestLoad_LocalSettingsRejectsUnknownKeys(t *testing.T) {
 	}
 }
 
+func TestLoad_MissingRedactionIsNil(t *testing.T) {
+	tmpDir := t.TempDir()
+	entireDir := filepath.Join(tmpDir, ".entire")
+	if err := os.MkdirAll(entireDir, 0755); err != nil {
+		t.Fatalf("failed to create .entire directory: %v", err)
+	}
+
+	settingsFile := filepath.Join(entireDir, "settings.json")
+	if err := os.WriteFile(settingsFile, []byte(`{"strategy": "manual-commit"}`), 0644); err != nil {
+		t.Fatalf("failed to write settings file: %v", err)
+	}
+	if err := os.MkdirAll(filepath.Join(tmpDir, ".git"), 0755); err != nil {
+		t.Fatalf("failed to create .git directory: %v", err)
+	}
+	t.Chdir(tmpDir)
+
+	settings, err := Load()
+	if err != nil {
+		t.Fatalf("unexpected error: %v", err)
+	}
+	if settings.Redaction != nil {
+		t.Error("expected redaction to be nil when not in settings")
+	}
+}
+
+func TestLoad_LocalOverridesRedaction(t *testing.T) {
+	tmpDir := t.TempDir()
+	entireDir := filepath.Join(tmpDir, ".entire")
+	if err := os.MkdirAll(entireDir, 0755); err != nil {
+		t.Fatalf("failed to create .entire directory: %v", err)
+	}
+
+	// Base settings: PII disabled
+	settingsFile := filepath.Join(entireDir, "settings.json")
+	if err := os.WriteFile(settingsFile, []byte(`{"strategy": "manual-commit", "redaction": {"pii": {"enabled": false}}}`), 0644); err != nil {
+		t.Fatalf("failed to write settings file: %v", err)
+	}
+
+	// Local override: PII enabled with custom patterns
+	localFile := filepath.Join(entireDir, "settings.local.json")
+	localContent := `{"redaction": {"pii": {"enabled": true, "custom_patterns": {"employee_id": "EMP-\\d{6}"}}}}`
+	if err := os.WriteFile(localFile, []byte(localContent), 0644); err != nil {
+		t.Fatalf("failed to write local settings file: %v", err)
+	}
+
+	if err := os.MkdirAll(filepath.Join(tmpDir, ".git"), 0755); err != nil {
+		t.Fatalf("failed to create .git directory: %v", err)
+	}
+	t.Chdir(tmpDir)
+
+	settings, err := Load()
+	if err != nil {
+		t.Fatalf("unexpected error: %v", err)
+	}
+	if settings.Redaction == nil || settings.Redaction.PII == nil {
+		t.Fatal("expected redaction.pii to be non-nil after local override")
+	}
+	if !settings.Redaction.PII.Enabled {
+		t.Error("expected local override to enable PII")
+	}
+	if settings.Redaction.PII.CustomPatterns == nil {
+		t.Fatal("expected custom_patterns to be non-nil")
+	}
+	if settings.Redaction.PII.CustomPatterns["employee_id"] != `EMP-\d{6}` {
+		t.Errorf("expected employee_id pattern, got %v", settings.Redaction.PII.CustomPatterns)
+	}
+}
+
+func TestLoad_LocalMergesRedactionSubfields(t *testing.T) {
+	tmpDir := t.TempDir()
+	entireDir := filepath.Join(tmpDir, ".entire")
+	if err := os.MkdirAll(entireDir, 0755); err != nil {
+		t.Fatalf("failed to create .entire directory: %v", err)
+	}
+
+	// Base: PII enabled with email=true, phone=true
+	baseContent := `{"strategy":"manual-commit","redaction":{"pii":{"enabled":true,"email":true,"phone":true}}}`
+	if err := os.WriteFile(filepath.Join(entireDir, "settings.json"), []byte(baseContent), 0644); err != nil {
+		t.Fatalf("failed to write settings file: %v", err)
+	}
+
+	// Local: adds custom_patterns only — should NOT erase email/phone from base
+	localContent := `{"redaction":{"pii":{"enabled":true,"custom_patterns":{"ssn":"\\d{3}-\\d{2}-\\d{4}"}}}}`
+	if err := os.WriteFile(filepath.Join(entireDir, "settings.local.json"), []byte(localContent), 0644); err != nil {
+		t.Fatalf("failed to write local settings file: %v", err)
+	}
+
+	if err := os.MkdirAll(filepath.Join(tmpDir, ".git"), 0755); err != nil {
+		t.Fatalf("failed to create .git directory: %v", err)
+	}
+	t.Chdir(tmpDir)
+
+	settings, err := Load()
+	if err != nil {
+		t.Fatalf("unexpected error: %v", err)
+	}
+	if settings.Redaction == nil || settings.Redaction.PII == nil {
+		t.Fatal("expected redaction.pii to be non-nil")
+	}
+	// email and phone from base should survive local merge
+	if settings.Redaction.PII.Email == nil || !*settings.Redaction.PII.Email {
+		t.Error("expected email=true from base to survive local merge")
+	}
+	if settings.Redaction.PII.Phone == nil || !*settings.Redaction.PII.Phone {
+		t.Error("expected phone=true from base to survive local merge")
+	}
+	// custom_patterns from local should be present
+	if settings.Redaction.PII.CustomPatterns == nil {
+		t.Fatal("expected custom_patterns from local to be present")
+	}
+	if _, ok := settings.Redaction.PII.CustomPatterns["ssn"]; !ok {
+		t.Error("expected ssn pattern from local override")
+	}
+}
+
 // containsUnknownField checks if the error message indicates an unknown field
 func containsUnknownField(msg string) bool {
 	// Go's json package reports unknown fields with this message format
diff --git a/cmd/entire/cli/strategy/common.go b/cmd/entire/cli/strategy/common.go
index ecc5b5775..a63318c27 100644
--- a/cmd/entire/cli/strategy/common.go
+++ b/cmd/entire/cli/strategy/common.go
@@ -5,6 +5,7 @@ import (
 	"encoding/json"
 	"errors"
 	"fmt"
+	"log/slog"
 	"os"
 	"os/exec"
 	"path/filepath"
@@ -16,8 +17,11 @@ import (
 	"github.com/entireio/cli/cmd/entire/cli/agent"
 	"github.com/entireio/cli/cmd/entire/cli/checkpoint"
 	"github.com/entireio/cli/cmd/entire/cli/checkpoint/id"
+	"github.com/entireio/cli/cmd/entire/cli/logging"
 	"github.com/entireio/cli/cmd/entire/cli/paths"
+	"github.com/entireio/cli/cmd/entire/cli/settings"
 	"github.com/entireio/cli/cmd/entire/cli/trailers"
+	"github.com/entireio/cli/redact"
 
 	"github.com/go-git/go-git/v5"
 	"github.com/go-git/go-git/v5/plumbing"
@@ -238,6 +242,37 @@ var (
 	protectedDirsCache []string
 )
 
+var initRedactionOnce sync.Once
+
+// EnsureRedactionConfigured loads PII redaction settings and configures the
+// redact package. No-op if PII is not enabled in settings.
+// Must be called at each process entry point before checkpoint writes
+// (e.g., hook PersistentPreRunE, doctor PreRun).
+func EnsureRedactionConfigured() {
+	initRedactionOnce.Do(func() {
+		s, err := settings.Load()
+		if err != nil {
+			logCtx := logging.WithComponent(context.Background(), "redaction")
+			logging.Warn(logCtx, "failed to load settings for PII redaction", slog.String("error", err.Error()))
+			return
+		}
+		if s.Redaction == nil || s.Redaction.PII == nil || !s.Redaction.PII.Enabled {
+			return
+		}
+		pii := s.Redaction.PII
+		cfg := redact.PIIConfig{
+			Enabled:        true,
+			Categories:     make(map[redact.PIICategory]bool),
+			CustomPatterns: pii.CustomPatterns,
+		}
+		// Email and phone default to true when PII is enabled; address defaults to false.
+		cfg.Categories[redact.PIIEmail] = pii.Email == nil || *pii.Email
+		cfg.Categories[redact.PIIPhone] = pii.Phone == nil || *pii.Phone
+		cfg.Categories[redact.PIIAddress] = pii.Address != nil && *pii.Address
+		redact.ConfigurePII(cfg)
+	})
+}
+
 // isSpecificAgentType returns true if the agent type is a known, specific value
 // (not empty and not the generic "Agent" fallback).
 func isSpecificAgentType(t agent.AgentType) bool {
diff --git a/redact/pii.go b/redact/pii.go
new file mode 100644
index 000000000..e48b3db45
--- /dev/null
+++ b/redact/pii.go
@@ -0,0 +1,201 @@
+package redact
+
+import (
+	"log/slog"
+	"regexp"
+	"strings"
+	"sync"
+)
+
+// PIICategory identifies a category of personally identifiable information.
+type PIICategory string
+
+const (
+	PIIEmail   PIICategory = "email"
+	PIIPhone   PIICategory = "phone"
+	PIIAddress PIICategory = "address"
+)
+
+// Label constants used in replacement tokens and pattern matching.
+const (
+	labelEmail   = "EMAIL"
+	labelPhone   = "PHONE"
+	labelAddress = "ADDRESS"
+)
+
+// PIIConfig controls which PII categories are detected and redacted.
+type PIIConfig struct {
+	// Enabled globally enables/disables PII redaction.
+	// When false, no PII patterns are checked (secrets still redacted).
+	Enabled bool
+
+	// Categories maps each PII category to whether it is enabled.
+	// Missing keys default to false (disabled).
+	Categories map[PIICategory]bool
+
+	// CustomPatterns allows teams to define additional regex patterns.
+	// Each key is a label used in the replacement token (uppercased),
+	// and each value is a regex pattern string.
+	// Example: {"employee_id": `EMP-\d{6}`} produces [REDACTED_EMPLOYEE_ID].
+	CustomPatterns map[string]string
+
+	// patterns holds pre-compiled patterns, populated by ConfigurePII.
+	// When nil (e.g., in tests constructing PIIConfig directly),
+	// detectPII falls back to compilePIIPatterns.
+	patterns []piiPattern
+}
+
+// piiPattern is a compiled regex with its replacement token label.
+type piiPattern struct {
+	regex *regexp.Regexp
+	label string // e.g., "EMAIL", "PHONE", "ADDRESS"
+}
+
+var (
+	piiConfig   *PIIConfig
+	piiConfigMu sync.RWMutex
+)
+
+// ConfigurePII sets the global PII redaction configuration.
+// Pre-compiles patterns so the hot path (String → detectPII) does no compilation.
+// Call once at startup after loading settings. Thread-safe.
+func ConfigurePII(cfg PIIConfig) {
+	piiConfigMu.Lock()
+	defer piiConfigMu.Unlock()
+	cfgCopy := cfg
+	cfgCopy.patterns = compilePIIPatterns(&cfgCopy)
+	piiConfig = &cfgCopy
+}
+
+// getPIIConfig returns the current PII configuration, or nil if not configured.
+func getPIIConfig() *PIIConfig {
+	piiConfigMu.RLock()
+	defer piiConfigMu.RUnlock()
+	return piiConfig
+}
+
+// Pre-compiled builtin PII regexes.
+var (
+	emailRegex = regexp.MustCompile(`\b[a-zA-Z0-9._%+\-]+@[a-zA-Z0-9.\-]+\.[a-zA-Z]{2,}\b`)
+	// phoneRegex uses three branches to avoid false-positives on dotted-decimal
+	// strings like version numbers (1.234.567.8901) and IPs (192.168.001.0001).
+	// Dots are only allowed as separators when preceded by +1 (unambiguous intl prefix).
+	// Without +1, only dashes and spaces are accepted as separators.
+	phoneRegex = regexp.MustCompile(
+		`(?:` +
+			`\+1[-.\s]?\(?\d{3}\)?[-.\s]?\d{3}[-.\s]?\d{4}` + // +1 intl prefix: any separator
+			`|` +
+			`(?:1[-\s])?\(\d{3}\)\s?\d{3}[-.\s]?\d{4}` + // parenthesized area code
+			`|` +
+			`(?:1[-\s])?\d{3}[-\s]\d{3}[-\s]\d{4}` + // bare digits: dash/space only
+			`)`,
+	)
+	addressRegex = regexp.MustCompile(`\d{1,5}\s+[A-Z][a-zA-Z]+(?:\s+[A-Z][a-zA-Z]+)*\s+(?:St(?:reet)?|Ave(?:nue)?|Blvd|Boulevard|Dr(?:ive)?|Ln|Lane|Rd|Road|Ct|Court|Pl(?:ace)?|Way|Cir(?:cle)?|Ter(?:race)?|Pkwy|Parkway)\.?`)
+)
+
+// emailAllowPatterns are email patterns that should NOT be treated as PII.
+// These appear frequently in coding transcripts (git authors, bot accounts)
+// and are public metadata rather than private information.
+// Entries starting with "@" match the email suffix; entries ending with "@"
+// match the email prefix. All comparisons are case-insensitive.
+var emailAllowPatterns = []string{
+	"noreply@",                  // Generic noreply addresses
+	"actions@",                  // GitHub Actions bot
+	"@users.noreply.github.com", // GitHub user noreply
+	"@noreply.github.com",       // GitHub noreply
+}
+
+// isAllowlistedEmail returns true if the email matches a known non-sensitive pattern.
+func isAllowlistedEmail(email string) bool {
+	lower := strings.ToLower(email)
+	for _, pattern := range emailAllowPatterns {
+		lp := strings.ToLower(pattern)
+		switch {
+		case strings.HasPrefix(pattern, "@"):
+			if strings.HasSuffix(lower, lp) {
+				return true
+			}
+		case strings.HasSuffix(pattern, "@"):
+			if strings.HasPrefix(lower, lp) {
+				return true
+			}
+		default:
+			if lower == lp {
+				return true
+			}
+		}
+	}
+	return false
+}
+
+// builtinPIIPattern associates a compiled regex with a category and label.
+type builtinPIIPattern struct {
+	category PIICategory
+	label    string
+	regex    *regexp.Regexp
+}
+
+// builtinPIIPatterns is the set of default PII detection patterns.
+var builtinPIIPatterns = []builtinPIIPattern{
+	{PIIEmail, labelEmail, emailRegex},
+	{PIIPhone, labelPhone, phoneRegex},
+	{PIIAddress, labelAddress, addressRegex},
+}
+
+// detectPII returns tagged regions for PII matches in s.
+// Returns nil immediately if PII redaction is not configured or not enabled.
+func detectPII(cfg *PIIConfig, s string) []taggedRegion {
+	if cfg == nil || !cfg.Enabled {
+		return nil
+	}
+
+	patterns := cfg.patterns
+	if patterns == nil {
+		patterns = compilePIIPatterns(cfg)
+	}
+	var regions []taggedRegion
+	for _, p := range patterns {
+		for _, loc := range p.regex.FindAllStringIndex(s, -1) {
+			// Skip allowlisted email addresses (noreply, bot accounts, etc.).
+			if p.label == labelEmail && isAllowlistedEmail(s[loc[0]:loc[1]]) {
+				continue
+			}
+			regions = append(regions, taggedRegion{
+				region: region{loc[0], loc[1]},
+				label:  p.label,
+			})
+		}
+	}
+	return regions
+}
+
+// compilePIIPatterns builds the pattern list from config.
+// Builtin regexes are pre-compiled package vars; only custom patterns
+// need compilation here.
+func compilePIIPatterns(cfg *PIIConfig) []piiPattern {
+	var patterns []piiPattern
+	for _, bp := range builtinPIIPatterns {
+		if enabled, ok := cfg.Categories[bp.category]; ok && enabled {
+			patterns = append(patterns, piiPattern{regex: bp.regex, label: bp.label})
+		}
+	}
+	for label, pattern := range cfg.CustomPatterns {
+		compiled, err := regexp.Compile(pattern)
+		if err != nil {
+			slog.Warn("skipping invalid custom PII pattern", slog.String("label", label), slog.String("error", err.Error()))
+			continue
+		}
+		patterns = append(patterns, piiPattern{regex: compiled, label: strings.ToUpper(label)})
+	}
+	return patterns
+}
+
+// replacementToken returns the redaction placeholder for a given label.
+// Empty label (secrets) returns "REDACTED" for backward compatibility.
+// Non-empty label (PII) returns "[REDACTED_<LABEL>]".
+func replacementToken(label string) string {
+	if label == "" {
+		return "REDACTED"
+	}
+	return "[REDACTED_" + label + "]"
+}
diff --git a/redact/pii_test.go b/redact/pii_test.go
new file mode 100644
index 000000000..524e42d9e
--- /dev/null
+++ b/redact/pii_test.go
@@ -0,0 +1,560 @@
+package redact
+
+import (
+	"strings"
+	"testing"
+)
+
+// =============================================================================
+// Level 1: Pure regex tests — no config, no globals, t.Parallel()
+// =============================================================================
+
+func TestEmailRegex(t *testing.T) {
+	t.Parallel()
+	match := []string{
+		"user@example.com",
+		"user+tag@domain.co.uk",
+		"first.last@company.org",
+		"a@b.com",
+	}
+	noMatch := []string{
+		"not an email",
+		"@missing.local",
+		"missing@",
+		"no-at-sign-here",
+	}
+	for _, s := range match {
+		if !emailRegex.MatchString(s) {
+			t.Errorf("emailRegex should match %q", s)
+		}
+	}
+	for _, s := range noMatch {
+		if emailRegex.MatchString(s) {
+			t.Errorf("emailRegex should NOT match %q", s)
+		}
+	}
+}
+
+func TestPhoneRegex(t *testing.T) {
+	t.Parallel()
+	match := []string{
+		"555-123-4567",
+		"(555) 123-4567",
+		"+1-555-123-4567",
+		"+1.555.123.4567",
+		"1-555-123-4567",
+		"555 123 4567",
+	}
+	noMatch := []string{
+		"42",
+		"12345",
+		"not a phone",
+		"1.234.567.8901",   // version-like dotted decimal
+		"192.168.001.0001", // IP-like dotted decimal
+		"555.123.4567",     // bare dots without +1 prefix (intentionally rejected)
+	}
+	for _, s := range match {
+		if !phoneRegex.MatchString(s) {
+			t.Errorf("phoneRegex should match %q", s)
+		}
+	}
+	for _, s := range noMatch {
+		if phoneRegex.MatchString(s) {
+			t.Errorf("phoneRegex should NOT match %q", s)
+		}
+	}
+}
+
+func TestAddressRegex(t *testing.T) {
+	t.Parallel()
+	match := []string{
+		"123 Main Street",
+		"456 Oak Avenue",
+		"789 Sunset Blvd",
+		"42 Pine Drive",
+	}
+	noMatch := []string{
+		"this is normal text",
+		"123 lowercase street",
+		"no number Street",
+	}
+	for _, s := range match {
+		if !addressRegex.MatchString(s) {
+			t.Errorf("addressRegex should match %q", s)
+		}
+	}
+	for _, s := range noMatch {
+		if addressRegex.MatchString(s) {
+			t.Errorf("addressRegex should NOT match %q", s)
+		}
+	}
+}
+
+// =============================================================================
+// Level 2: detectPII unit tests — explicit config, no globals, t.Parallel()
+// =============================================================================
+
+func TestDetectPII_EmailRegions(t *testing.T) {
+	t.Parallel()
+	cfg := &PIIConfig{
+		Enabled:    true,
+		Categories: map[PIICategory]bool{PIIEmail: true},
+	}
+	input := "contact user@example.com for info"
+	regions := detectPII(cfg, input)
+	if len(regions) != 1 {
+		t.Fatalf("expected 1 region, got %d", len(regions))
+	}
+	if regions[0].label != labelEmail {
+		t.Errorf("expected label EMAIL, got %q", regions[0].label)
+	}
+	got := input[regions[0].start:regions[0].end]
+	if got != "user@example.com" {
+		t.Errorf("expected matched text %q, got %q", "user@example.com", got)
+	}
+}
+
+func TestDetectPII_PhoneRegions(t *testing.T) {
+	t.Parallel()
+	cfg := &PIIConfig{
+		Enabled:    true,
+		Categories: map[PIICategory]bool{PIIPhone: true},
+	}
+	regions := detectPII(cfg, "call 555-123-4567 now")
+	if len(regions) != 1 {
+		t.Fatalf("expected 1 region, got %d", len(regions))
+	}
+	if regions[0].label != labelPhone {
+		t.Errorf("expected label PHONE, got %q", regions[0].label)
+	}
+}
+
+func TestDetectPII_AddressRegions(t *testing.T) {
+	t.Parallel()
+	cfg := &PIIConfig{
+		Enabled:    true,
+		Categories: map[PIICategory]bool{PIIAddress: true},
+	}
+	regions := detectPII(cfg, "lives at 123 Main Street ok")
+	if len(regions) != 1 {
+		t.Fatalf("expected 1 region, got %d", len(regions))
+	}
+	if regions[0].label != labelAddress {
+		t.Errorf("expected label ADDRESS, got %q", regions[0].label)
+	}
+}
+
+func TestDetectPII_CategoryToggle(t *testing.T) {
+	t.Parallel()
+	cfg := &PIIConfig{
+		Enabled:    true,
+		Categories: map[PIICategory]bool{PIIEmail: true, PIIPhone: false},
+	}
+	regions := detectPII(cfg, "email user@example.com phone 555-123-4567")
+	for _, r := range regions {
+		if r.label == labelPhone {
+			t.Errorf("phone should not be detected when category is disabled")
+		}
+	}
+	hasEmail := false
+	for _, r := range regions {
+		if r.label == labelEmail {
+			hasEmail = true
+		}
+	}
+	if !hasEmail {
+		t.Error("expected at least one EMAIL region")
+	}
+}
+
+func TestDetectPII_CustomPatterns(t *testing.T) {
+	t.Parallel()
+	cfg := &PIIConfig{
+		Enabled:        true,
+		Categories:     map[PIICategory]bool{},
+		CustomPatterns: map[string]string{"employee_id": `EMP-\d{6}`},
+	}
+	regions := detectPII(cfg, "employee EMP-123456 joined")
+	if len(regions) != 1 {
+		t.Fatalf("expected 1 region, got %d", len(regions))
+	}
+	if regions[0].label != "EMPLOYEE_ID" {
+		t.Errorf("expected label EMPLOYEE_ID, got %q", regions[0].label)
+	}
+}
+
+func TestDetectPII_NilConfig(t *testing.T) {
+	t.Parallel()
+	regions := detectPII(nil, "user@example.com 555-123-4567")
+	if len(regions) != 0 {
+		t.Errorf("expected no regions with nil config, got %d", len(regions))
+	}
+}
+
+func TestDetectPII_Disabled(t *testing.T) {
+	t.Parallel()
+	cfg := &PIIConfig{
+		Enabled:    false,
+		Categories: map[PIICategory]bool{PIIEmail: true},
+	}
+	regions := detectPII(cfg, "user@example.com")
+	if len(regions) != 0 {
+		t.Errorf("expected no regions when disabled, got %d", len(regions))
+	}
+}
+
+func TestDetectPII_InvalidCustomPattern(t *testing.T) {
+	t.Parallel()
+	cfg := &PIIConfig{
+		Enabled:        true,
+		Categories:     map[PIICategory]bool{},
+		CustomPatterns: map[string]string{"bad": "[invalid"},
+	}
+	regions := detectPII(cfg, "some text")
+	if len(regions) != 0 {
+		t.Errorf("expected no regions with invalid custom pattern, got %d", len(regions))
+	}
+}
+
+func TestDetectPII_MultipleMatches(t *testing.T) {
+	t.Parallel()
+	cfg := &PIIConfig{
+		Enabled:    true,
+		Categories: map[PIICategory]bool{PIIEmail: true},
+	}
+	regions := detectPII(cfg, "a@b.com and c@d.org")
+	if len(regions) != 2 {
+		t.Fatalf("expected 2 regions, got %d", len(regions))
+	}
+}
+
+// =============================================================================
+// Level 3: Integration smoke tests through String() — needs global, few cases
+// =============================================================================
+
+// NOTE: Level 3 tests modify global state via ConfigurePII, so they
+// are NOT t.Parallel(). Keep this section small — detailed coverage
+// lives in Level 1 (regex) and Level 2 (detectPII).
+
+// resetPIIConfig resets the global PII configuration between tests.
+func resetPIIConfig() {
+	piiConfigMu.Lock()
+	defer piiConfigMu.Unlock()
+	piiConfig = nil
+}
+
+func TestPIIIntegration_EmailThroughString(t *testing.T) {
+	ConfigurePII(PIIConfig{
+		Enabled:    true,
+		Categories: map[PIICategory]bool{PIIEmail: true},
+	})
+	t.Cleanup(resetPIIConfig)
+
+	got := String("contact user@example.com for info")
+	want := "contact [REDACTED_EMAIL] for info"
+	if got != want {
+		t.Errorf("String() = %q, want %q", got, want)
+	}
+}
+
+func TestPIIIntegration_SecretAndPIICoexist(t *testing.T) {
+	ConfigurePII(PIIConfig{
+		Enabled:    true,
+		Categories: map[PIICategory]bool{PIIEmail: true},
+	})
+	t.Cleanup(resetPIIConfig)
+
+	input := "key=" + highEntropySecret + " and user@example.com"
+	got := String(input)
+	if strings.Contains(got, highEntropySecret) {
+		t.Errorf("secret should be redacted, got %q", got)
+	}
+	if strings.Contains(got, "user@example.com") {
+		t.Errorf("email should be redacted, got %q", got)
+	}
+}
+
+func TestPIIIntegration_DisabledByDefault(t *testing.T) {
+	resetPIIConfig()
+	t.Cleanup(resetPIIConfig)
+
+	input := "contact user@example.com and call 555-123-4567"
+	got := String(input)
+	if got != input {
+		t.Errorf("PII should not be redacted when not configured, got %q", got)
+	}
+}
+
+func TestPIIIntegration_JSONLContent(t *testing.T) {
+	ConfigurePII(PIIConfig{
+		Enabled:    true,
+		Categories: map[PIICategory]bool{PIIEmail: true},
+	})
+	t.Cleanup(resetPIIConfig)
+
+	input := `{"content":"contact user@example.com"}`
+	got, err := JSONLContent(input)
+	if err != nil {
+		t.Fatalf("unexpected error: %v", err)
+	}
+	if strings.Contains(got, "user@example.com") {
+		t.Errorf("email should be redacted in JSONL, got %q", got)
+	}
+}
+
+func TestPIIIntegration_Bytes(t *testing.T) {
+	ConfigurePII(PIIConfig{
+		Enabled:    true,
+		Categories: map[PIICategory]bool{PIIEmail: true},
+	})
+	t.Cleanup(resetPIIConfig)
+
+	got := Bytes([]byte("contact user@example.com"))
+	if !strings.Contains(string(got), "[REDACTED_EMAIL]") {
+		t.Errorf("expected [REDACTED_EMAIL] in Bytes output, got %q", string(got))
+	}
+}
+
+func TestPII_ReplacementTokenFormat(t *testing.T) {
+	t.Parallel()
+	tests := []struct {
+		label string
+		want  string
+	}{
+		{"", "REDACTED"},
+		{labelEmail, "[REDACTED_EMAIL]"},
+		{labelPhone, "[REDACTED_PHONE]"},
+		{labelAddress, "[REDACTED_ADDRESS]"},
+		{"EMPLOYEE_ID", "[REDACTED_EMPLOYEE_ID]"},
+	}
+	for _, tt := range tests {
+		t.Run(tt.label, func(t *testing.T) {
+			t.Parallel()
+			got := replacementToken(tt.label)
+			if got != tt.want {
+				t.Errorf("replacementToken(%q) = %q, want %q", tt.label, got, tt.want)
+			}
+		})
+	}
+}
+
+// =============================================================================
+// Level 2 additions: edge cases and contracts
+// =============================================================================
+
+func TestDetectPII_EmptyString(t *testing.T) {
+	t.Parallel()
+	cfg := &PIIConfig{
+		Enabled:    true,
+		Categories: map[PIICategory]bool{PIIEmail: true, PIIPhone: true},
+	}
+	regions := detectPII(cfg, "")
+	if len(regions) != 0 {
+		t.Errorf("expected nil regions for empty string, got %d", len(regions))
+	}
+}
+
+func TestDetectPII_InvalidAndValidCustomPatterns(t *testing.T) {
+	t.Parallel()
+	cfg := &PIIConfig{
+		Enabled:    true,
+		Categories: map[PIICategory]bool{},
+		CustomPatterns: map[string]string{
+			"bad":         "[invalid",
+			"employee_id": `EMP-\d{6}`,
+		},
+	}
+	regions := detectPII(cfg, "employee EMP-123456 joined")
+	if len(regions) != 1 {
+		t.Fatalf("expected 1 region (valid pattern should still fire despite invalid sibling), got %d", len(regions))
+	}
+	if regions[0].label != "EMPLOYEE_ID" {
+		t.Errorf("expected label EMPLOYEE_ID, got %q", regions[0].label)
+	}
+}
+
+// =============================================================================
+// Level 2: Email allowlist tests (TDD — these FAIL until allowlist is implemented)
+// =============================================================================
+
+func TestDetectPII_AllowlistedEmails(t *testing.T) {
+	t.Parallel()
+	cfg := &PIIConfig{
+		Enabled:    true,
+		Categories: map[PIICategory]bool{PIIEmail: true},
+	}
+	// These emails appear constantly in coding transcripts and are non-sensitive.
+	allowlisted := []string{
+		"noreply@github.com",
+		"user@users.noreply.github.com",
+		"dependabot@users.noreply.github.com",
+		"actions@github.com",
+		"someone@noreply.github.com",
+		"Noreply@GitHub.com", // case-insensitive
+	}
+	for _, email := range allowlisted {
+		input := "from " + email + " to"
+		regions := detectPII(cfg, input)
+		for _, r := range regions {
+			matched := input[r.start:r.end]
+			if r.label == labelEmail && matched == email {
+				t.Errorf("allowlisted email %q should NOT be detected as PII", email)
+			}
+		}
+	}
+
+	// Regular emails should still be detected.
+	regions := detectPII(cfg, "contact user@example.com for info")
+	hasEmail := false
+	for _, r := range regions {
+		if r.label == labelEmail {
+			hasEmail = true
+		}
+	}
+	if !hasEmail {
+		t.Error("non-allowlisted email should still be detected")
+	}
+}
+
+func TestDetectPII_GitAuthorNoreplyNotRedacted(t *testing.T) {
+	t.Parallel()
+	cfg := &PIIConfig{
+		Enabled:    true,
+		Categories: map[PIICategory]bool{PIIEmail: true},
+	}
+	// Simulates git log output — noreply addresses should not be redacted
+	input := "Author: Bot <noreply@github.com>\nCo-Authored-By: User <user@users.noreply.github.com>"
+	regions := detectPII(cfg, input)
+	for _, r := range regions {
+		if r.label == labelEmail {
+			t.Errorf("noreply email in git author line should NOT be detected, but matched %q", input[r.start:r.end])
+		}
+	}
+}
+
+// =============================================================================
+// Level 3 additions: #471 regression safety WITH PII enabled
+// =============================================================================
+
+func TestPIIEnabled_FilePathsStillPreserved(t *testing.T) {
+	ConfigurePII(PIIConfig{
+		Enabled:    true,
+		Categories: map[PIICategory]bool{PIIEmail: true, PIIPhone: true},
+	})
+	t.Cleanup(resetPIIConfig)
+
+	paths := []string{
+		"/tmp/TestE2E_Something3407889464/001/controller.go",
+		"/private/var/folders/v4/31cd3cg52_sfrpb1mbtr7q7r0000gn/T/TestE2E_Something/controller",
+		"/Users/peytonmontei/.claude/projects/something.jsonl",
+		"/tmp/test/controller.go\n/tmp/test/model.go\n/tmp/test/view.go",
+	}
+	for _, p := range paths {
+		got := String(p)
+		if got != p {
+			t.Errorf("file path should NOT be redacted with PII enabled\n  input: %q\n  got:   %q", p, got)
+		}
+	}
+}
+
+func TestPIIEnabled_JSONEscapesStillPreserved(t *testing.T) {
+	ConfigurePII(PIIConfig{
+		Enabled:    true,
+		Categories: map[PIICategory]bool{PIIEmail: true, PIIPhone: true},
+	})
+	t.Cleanup(resetPIIConfig)
+
+	tests := []string{
+		`controller.go\nmodel.go\nview.go`,
+		`something.go\tanother.go`,
+		`C:\\Users\\test\\file.go`,
+	}
+	for _, input := range tests {
+		got := String(input)
+		if got != input {
+			t.Errorf("JSON escape should NOT be corrupted with PII enabled\n  input: %q\n  got:   %q", input, got)
+		}
+	}
+}
+
+func TestPIIEnabled_JSONLPathFieldsStillSkipped(t *testing.T) {
+	ConfigurePII(PIIConfig{
+		Enabled:    true,
+		Categories: map[PIICategory]bool{PIIEmail: true},
+	})
+	t.Cleanup(resetPIIConfig)
+
+	input := `{"file_path":"/private/var/folders/v4/31cd3cg52_sfrpb1mbtr7q7r0000gn/T/test/controller.go","cwd":"/private/var/folders/v4/31cd3cg52_sfrpb1mbtr7q7r0000gn/T/test","content":"normal text here"}`
+	got, err := JSONLContent(input)
+	if err != nil {
+		t.Fatalf("unexpected error: %v", err)
+	}
+	if strings.Contains(got, "REDACTED") {
+		t.Errorf("JSONL path fields should NOT be redacted with PII enabled, got: %s", got)
+	}
+}
+
+func TestPIIEnabled_SecretPatternExcludesSlash(t *testing.T) {
+	ConfigurePII(PIIConfig{
+		Enabled:    true,
+		Categories: map[PIICategory]bool{PIIEmail: true, PIIPhone: true},
+	})
+	t.Cleanup(resetPIIConfig)
+
+	// This path was being redacted when / was in secretPattern
+	input := "/private/var/folders/v4/31cd3cg52_sfrpb1mbtr7q7r0000gn/T/TestE2E_Something/controller"
+	got := String(input)
+	if got != input {
+		t.Errorf("path with slashes should NOT be redacted\n  input: %q\n  got:   %q", input, got)
+	}
+}
+
+// =============================================================================
+// Level 3 additions: overlap and JSONL interaction
+// =============================================================================
+
+func TestPIIIntegration_OverlappingSecretAndPII(t *testing.T) {
+	ConfigurePII(PIIConfig{
+		Enabled:    true,
+		Categories: map[PIICategory]bool{PIIEmail: true},
+	})
+	t.Cleanup(resetPIIConfig)
+
+	// Secret and email adjacent (not overlapping) — both should be redacted
+	input := "key=" + highEntropySecret + " user@example.com"
+	got := String(input)
+	if strings.Contains(got, highEntropySecret) {
+		t.Error("secret should be redacted")
+	}
+	if strings.Contains(got, "user@example.com") {
+		t.Error("email should be redacted")
+	}
+	if !strings.Contains(got, "REDACTED") {
+		t.Error("expected at least one REDACTED token")
+	}
+	if !strings.Contains(got, "[REDACTED_EMAIL]") {
+		t.Error("expected [REDACTED_EMAIL] token")
+	}
+}
+
+func TestPIIIntegration_JSONLSkippedFieldWithEmail(t *testing.T) {
+	ConfigurePII(PIIConfig{
+		Enabled:    true,
+		Categories: map[PIICategory]bool{PIIEmail: true},
+	})
+	t.Cleanup(resetPIIConfig)
+
+	// Email in file_path field should NOT be redacted (field is skipped).
+	// Email in content field SHOULD be redacted.
+	input := `{"file_path":"user@example.com/project/file.go","content":"contact admin@test.org"}`
+	got, err := JSONLContent(input)
+	if err != nil {
+		t.Fatalf("unexpected error: %v", err)
+	}
+	if !strings.Contains(got, "user@example.com") {
+		t.Errorf("email in file_path should NOT be redacted, got: %s", got)
+	}
+	if strings.Contains(got, "admin@test.org") {
+		t.Errorf("email in content should be redacted, got: %s", got)
+	}
+}
diff --git a/redact/redact.go b/redact/redact.go
index 5fb166a4e..d3d43aa0c 100644
--- a/redact/redact.go
+++ b/redact/redact.go
@@ -43,14 +43,23 @@ func getDetector() *detect.Detector {
 // region represents a byte range to redact.
 type region struct{ start, end int }
 
-// String replaces secrets in s with "REDACTED" using layered detection:
+// taggedRegion extends region with a label for typed replacement tokens.
+// Empty label = secret (produces "REDACTED"). Non-empty = PII (produces "[REDACTED_<LABEL>]").
+type taggedRegion struct {
+	region
+
+	label string
+}
+
+// String replaces secrets and PII in s using layered detection:
 // 1. Entropy-based: high-entropy alphanumeric sequences (threshold 4.5)
 // 2. Pattern-based: gitleaks regex rules (180+ known secret formats)
-// A string is redacted if EITHER method flags it.
+// 3. PII detection: email, phone, address patterns (only when configured via ConfigurePII)
+// A string is redacted if ANY method flags it.
 func String(s string) string {
-	var regions []region
+	var regions []taggedRegion
 
-	// 1. Entropy-based detection.
+	// 1. Entropy-based detection (secrets — always on).
 	for _, loc := range secretPattern.FindAllStringIndex(s, -1) {
 		start, end := loc[0], loc[1]
 
@@ -71,11 +80,11 @@ func String(s string) string {
 		}
 
 		if shannonEntropy(s[start:end]) > entropyThreshold {
-			regions = append(regions, region{start, end})
+			regions = append(regions, taggedRegion{region: region{start, end}})
 		}
 	}
 
-	// 2. Pattern-based detection via gitleaks.
+	// 2. Pattern-based detection via gitleaks (secrets — always on).
 	if d := getDetector(); d != nil {
 		for _, f := range d.DetectString(s) {
 			if f.Secret == "" {
@@ -88,27 +97,37 @@ func String(s string) string {
 					break
 				}
 				absIdx := searchFrom + idx
-				regions = append(regions, region{absIdx, absIdx + len(f.Secret)})
+				regions = append(regions, taggedRegion{region: region{absIdx, absIdx + len(f.Secret)}})
 				searchFrom = absIdx + len(f.Secret)
 			}
 		}
 	}
 
+	// 3. PII detection (opt-in — only runs when configured).
+	regions = append(regions, detectPII(getPIIConfig(), s)...)
+
 	if len(regions) == 0 {
 		return s
 	}
 
 	// Merge overlapping regions and build result.
 	sort.Slice(regions, func(i, j int) bool {
-		return regions[i].start < regions[j].start
+		if regions[i].start != regions[j].start {
+			return regions[i].start < regions[j].start
+		}
+		if regions[i].end != regions[j].end {
+			return regions[i].end > regions[j].end // larger region first
+		}
+		return regions[i].label < regions[j].label // deterministic tie-break
 	})
-	merged := []region{regions[0]}
+	merged := []taggedRegion{regions[0]}
 	for _, r := range regions[1:] {
 		last := &merged[len(merged)-1]
 		if r.start <= last.end {
 			if r.end > last.end {
 				last.end = r.end
 			}
+			// Keep the existing label (first/larger region wins)
 		} else {
 			merged = append(merged, r)
 		}
@@ -118,7 +137,7 @@ func String(s string) string {
 	prev := 0
 	for _, r := range merged {
 		b.WriteString(s[prev:r.start])
-		b.WriteString("REDACTED")
+		b.WriteString(replacementToken(r.label))
 		prev = r.end
 	}
 	b.WriteString(s[prev:])